๐บ๐ธ
mawan
2026-07-09 01:54:37
(5 hours ago)
Suspected of having performed illicit activity on LAX server.
Web App Attack
๐ซ๐ฎ
inlink.ltd
2026-06-28 04:51:46
(1 week ago)
dot file probe
Web App Attack
๐ซ๐ท
Thaliruth
2026-06-19 00:09:36
(2 weeks ago)
[19/Jun/2026:02:09:35.664269 +0200] ajSIv6fEL-6KVreif7-RWgAAAEk 172.69.150.17 42334 127.0.0.1 7081
. ...
show more
[19/Jun/2026:02:09:35.664269 +0200] ajSIv6fEL-6KVreif7-RWgAAAEk 172.69.150.17 42334 127.0.0.1 7081
...
show less
Hacking
๐ซ๐ท
chengkev
2026-06-16 10:07:59
(3 weeks ago)
Esta IP fue detectada por CrowdSec, activando crowdsecurity/http-probing
Web App Attack
Hacking
๐บ๐ธ
TPI-Abuse
2026-05-27 20:28:32
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.69.150.17 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.69.150.17 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 27 16:28:26.596776 2026] [security2:error] [pid 5103:tid 5103] [client 172.69.150.17:12094] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "oowoah.com.high5-vr.com"] [uri "/.git/config"] [unique_id "ahdT6pFPh_zSRDpCKkZrBwAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
WellSpring
2026-05-16 01:57:30
(1 month ago)
wordpress scan on 401.today/wp-admin/install.php โ WellSpr.ing/NetSentinel civic-AI security layer
Bad Web Bot
Web App Attack
Anonymous
2026-04-17 00:19:10
(2 months ago)
[Fri Apr 17 02:19:08.654079 2026] [authz_core:error] [pid 14578] [client 172.69.150.17:10796] AH0163 ...
show more
[Fri Apr 17 02:19:08.654079 2026] [authz_core:error] [pid 14578] [client 172.69.150.17:10796] AH01630: client denied by server configuration: /etc/httpd/htdocs
[Fri Apr 17 02:19:08.915350 2026] [authz_core:error] [pid 14578] [client 172.69.150.17:10796] AH01630: client denied by server configuration: /etc/httpd/htdocs
[Fri Apr 17 02:19:09.455847 2026] [authz_core:error] [pid 14578] [client 172.69.150.17:10796] AH01630: client denied by server configuration: /etc/httpd/htdocs
...
show less
Web App Attack
Anonymous
2026-04-08 06:54:49
(3 months ago)
Aggressive web scan
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-08 00:20:28
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.69.150.17 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.69.150.17 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 07 20:20:21.579306 2026] [security2:error] [pid 1941657:tid 1941657] [client 172.69.150.17:9372] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.akmanoto.com"] [uri "/.git/index"] [unique_id "adWfRbGyKI6UL7NjZM9PDwAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-07 05:07:11
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.69.150.17 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.69.150.17 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 07 01:07:06.719854 2026] [security2:error] [pid 1190548:tid 1190548] [client 172.69.150.17:14131] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.forsythfixit.com"] [uri "/.git/logs/HEAD"] [unique_id "adSQ-jrEztzzWtqtJBZOPwAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐จ๐ญ
YF
2026-04-04 19:05:03
(3 months ago)
Attempted access to sensitive files
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-04 03:06:17
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.69.150.17 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.69.150.17 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 03 23:06:12.955075 2026] [security2:error] [pid 14301:tid 14301] [client 172.69.150.17:13747] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.sebog.org"] [uri "/.env.local"] [unique_id "adCAJCUZFsbKRMMyafu1OwAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
Hary74656
2026-04-04 01:58:32
(3 months ago)
[Sat Apr 04 03:57:37.558652 2026] [security2:error] [pid 1991:tid 1995] [remote 172.69.150.17:12532] ...
show more
[Sat Apr 04 03:57:37.558652 2026] [security2:error] [pid 1991:tid 1995] [remote 172.69.150.17:12532] [client 172.69.150.17] ModSecurity: Access denied with code 403 (phase 2). Pattern match "Search Engine" at TX:httpbl_msg. [file "/usr/share/modsecurity-crs/rules/REQUEST-910-IP-REPUTATION.conf"] [line "199"] [id "910150"] [msg "HTTP Blacklist match for search engine IP"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-reputation-ip"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [hostname "www.weavernet.at"] [uri "/.git/config"] [unique_id "adBwES4kn7dxjtr1DvXRMQAASwA"]
[Sat Apr 04 03:57:37.607037 2026] [security2:error] [pid 1991:tid 1996] [remote 172.69.150.17:12532] [client 172.69.150.17] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "/.env" at REQUEST_FILENAME. [file "/usr/share/modsecurity-crs/rules/REQUEST-930-APPLICATION-ATTACK-LFI.conf"] [line "125"] [id "930130"] [msg "Restrict
...
show less
Web App Attack
๐ซ๐ท
masterguru
2026-04-03 11:46:27
(3 months ago)
Blocked Cloudflare Worker request. Pattern match "." at REQUEST_HEADERS:cf-worker. (5025-197)
Hacking
๐บ๐ธ
TPI-Abuse
2026-04-03 05:47:56
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.69.150.17 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.69.150.17 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 03 01:47:49.206204 2026] [security2:error] [pid 7035:tid 7035] [client 172.69.150.17:11477] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.lahaciendaolivia.com"] [uri "/.git/config"] [unique_id "ac9UhT-cAek7ncuDDEOiMQAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack